$ rpki-client -vvf rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft File: yIwqqUquXvn01JfoOHo53RvOk50.mft (raw, json) Hash identifier: BaZRRFLex2JCUhcxlnGMJEPhtyY8AHy3bemj3oRXqUo= Subject key identifier: 0F:33:4A:A1:AD:37:8D:13:47:F7:D7:4C:52:46:CE:D6:CC:98:C4:18 Authority key identifier: C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D Certificate issuer: /CN=A91228E2/serialNumber=C88C2AA94AAE5EF9F4D497E8387A39DD1BCE939D Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft Manifest number: 010D Signing time: Sat 29 Mar 2025 04:22:48 +0000 Manifest this update: Sat 29 Mar 2025 04:22:47 +0000 Manifest next update: Sat 05 Apr 2025 04:22:47 +0000 Files and hashes: 1: yIwqqUquXvn01JfoOHo53RvOk50.crl (hash: jTPk8c26SeieR0+Zq6we4deS1HPEdvqKIqWBv36v2Fg=) 2: EF98E11472E211EEB93A4F72C4F9AE02.roa (hash: zjnMnu7RY/dZWeqb3tnlHnJORJa1AYwPA3wCVz3+WfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91228E2 Validity Not Before: Mar 29 04:22:47 2025 GMT Not After : Apr 5 04:22:47 2025 GMT Subject: CN=67e77598-e3bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fa:67:e8:ab:ed:fc:f7:7d:0e:fe:d6:a4:4f: 0c:b6:b4:3f:4c:89:b0:cf:27:90:ac:bc:8d:cc:98: 47:b4:bb:07:a7:64:3d:d0:50:14:7f:e6:b8:1b:1f: 80:59:9c:13:ee:3c:b6:2d:18:b4:b6:58:84:31:c3: ff:9f:4a:39:55:e9:f1:29:e1:e6:e7:94:94:5b:9e: ba:b4:cb:4a:30:a1:e9:46:e4:90:11:af:b4:07:61: 60:17:ec:86:db:51:cd:36:f8:20:47:fd:d8:5b:b5: 21:f6:ba:8c:6f:cd:d6:75:eb:69:e8:0d:3b:41:8f: 64:e5:9b:29:ea:c6:82:8a:91:37:2e:ab:11:88:c5: 9c:d6:ba:37:88:70:f5:8a:a0:d7:0c:43:98:76:ec: eb:74:29:5a:d6:8f:31:99:d1:36:e5:ed:d1:96:93: 23:a8:ee:61:3a:1a:61:38:04:4c:46:9b:fc:15:f5: ac:dc:c3:51:fe:19:66:68:6d:51:f4:ee:e6:61:ed: 50:fc:c2:da:a4:4f:2d:9c:bb:54:e9:b2:c5:55:37: e1:43:05:ef:de:96:69:b7:d0:ad:6d:89:7a:33:a8: a4:56:25:fe:c2:f8:e6:1c:33:06:90:d7:92:d7:ac: 3b:fb:43:0c:f4:d7:d3:d2:76:96:cd:c9:38:f2:70: cb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:33:4A:A1:AD:37:8D:13:47:F7:D7:4C:52:46:CE:D6:CC:98:C4:18 X509v3 Authority Key Identifier: keyid:C8:8C:2A:A9:4A:AE:5E:F9:F4:D4:97:E8:38:7A:39:DD:1B:CE:93:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIwqqUquXvn01JfoOHo53RvOk50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91228E2/CE5406F672E111EEB0781619C4F9AE02/yIwqqUquXvn01JfoOHo53RvOk50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:53:4e:9d:0e:9f:2a:97:42:f0:02:09:6a:98:b0:6b:c9:d8: ba:29:a8:10:19:9e:da:ab:5b:77:59:45:82:f7:59:43:52:03: 87:3c:e7:da:28:51:a5:d7:bc:a8:c4:9a:d9:3d:79:cb:45:fb: aa:f6:26:d7:e2:d8:43:07:99:32:66:20:4c:eb:08:26:8f:53: b2:01:6b:70:b1:15:71:97:72:27:fb:98:20:06:7d:c1:ee:36: b0:9c:f4:e6:4e:41:15:92:e8:be:97:0c:5c:09:c6:3c:15:dc: 13:3d:92:52:8d:a9:1d:45:aa:00:fc:40:29:89:3e:21:31:45: 6b:5a:0d:79:95:2f:86:39:66:55:e3:bc:93:9b:80:cb:b1:98: 5a:a3:1a:b1:c2:d6:37:52:ba:e9:c5:13:01:bb:49:aa:96:57: 50:16:cb:40:01:4d:1b:ad:b9:6c:4c:9a:ed:57:e8:5b:cd:87: 1c:a2:ef:9c:6f:b6:9e:f6:35:47:f3:a3:53:b9:0d:7e:53:2d: c3:14:c0:fe:b5:be:9e:9f:90:b7:12:b3:7a:5c:b4:6c:f5:4e: f4:b4:ce:c4:9d:22:5e:c9:39:84:66:de:a0:29:cf:2a:8a:d5: ac:89:07:f7:0b:44:aa:82:9f:1d:bc:76:bb:2d:48:70:42:c1: aa:50:f3:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI4RTIxMTAvBgNVBAUTKEM4OEMyQUE5NEFBRTVFRjlGNEQ0OTdFODM4N0EzOURE MUJDRTkzOUQwHhcNMjUwMzI5MDQyMjQ3WhcNMjUwNDA1MDQyMjQ3WjAYMRYwFAYD VQQDEw02N2U3NzU5OC1lM2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/pn6Kvt/Pd9Dv7WpE8MtrQ/TImwzyeQrLyNzJhHtLsHp2Q90FAUf+a4Gx+A WZwT7jy2LRi0tliEMcP/n0o5VenxKeHm55SUW566tMtKMKHpRuSQEa+0B2FgF+yG 21HNNvggR/3YW7Uh9rqMb83Wdetp6A07QY9k5Zsp6saCipE3LqsRiMWc1ro3iHD1 iqDXDEOYduzrdCla1o8xmdE25e3RlpMjqO5hOhphOARMRpv8FfWs3MNR/hlmaG1R 9O7mYe1Q/MLapE8tnLtU6bLFVTfhQwXv3pZpt9CtbYl6M6ikViX+wvjmHDMGkNeS 16w7+0MM9NfT0naWzck48nDLbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8zSqGt N40TR/fXTFJGztbMmMQYMB8GA1UdIwQYMBaAFMiMKqlKrl759NSX6Dh6Od0bzpOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjhFMi9DRTU0MDZGNjcy RTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2bjAxSmZvT0hvNTNSdk9r NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJd3FxVXF1WHZuMDFKZm9PSG81M1J2T2s1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjhFMi9DRTU0MDZGNjcyRTExMUVFQjA3ODE2MTlDNEY5QUUwMi95SXdxcVVxdVh2 bjAxSmZvT0hvNTNSdk9rNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6U06dDp8ql0LwAglqmLBrydi6KagQGZ7aq1t3WUWC91lDUgOHPOfa KFGl17yoxJrZPXnLRfuq9ibX4thDB5kyZiBM6wgmj1OyAWtwsRVxl3In+5ggBn3B 7jawnPTmTkEVkui+lwxcCcY8FdwTPZJSjakdRaoA/EApiT4hMUVrWg15lS+GOWZV 47yTm4DLsZhaoxqxwtY3UrrpxRMBu0mqlldQFstAAU0brblsTJrtV+hbzYccou+c b7ae9jVH86NTuQ1+Uy3DFMD+tb6en5C3ErN6XLRs9U70tM7EnSJeyTmEZt6gKc8q itWsiQf3C0Sqgp8dvHa7LUhwQsGqUPMX -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:50 2025 by rpki-client